mirror of
https://github.com/byt3bl33d3r/MITMf.git
synced 2025-08-20 21:43:28 -07:00
- Added Sniffer plugin
- Custom reactor options are now loaded dynamically from each plugin - Search engine query capture is now enabled with the sniffer plugin - Removed some useless comments and lib imports
This commit is contained in:
byt3bl33d3r
parent
fc74e480eb
commit
0c6ac4fb1d
13 changed files with 814 additions and 213 deletions
|
|
@ -11,6 +11,7 @@ Availible plugins:
|
|||
- Responder - LLMNR, NBT-NS and MDNS poisoner
|
||||
- SSLstrip+ - Partially bypass HSTS
|
||||
- Spoof - Redirect traffic using ARP Spoofing, ICMP Redirects or DHCP Spoofing and modify DNS queries
|
||||
- Sniffer - Sniffs for various protocol login and auth attempts
|
||||
- BeEFAutorun - Autoruns BeEF modules based on clients OS or browser type
|
||||
- AppCachePoison - Perform app cache poison attacks
|
||||
- SessionHijacking - Performs session hijacking attacks, and stores cookies in a firefox profile
|
||||
|
|
@ -26,6 +27,9 @@ Availible plugins:
|
|||
|
||||
So far the most significant changes have been:
|
||||
|
||||
- Addition of the Sniffer plugin which integrates Net-Creds (https://github.com/DanMcInerney/net-creds) currently supported protocols are:
|
||||
FTP, IRC, POP, IMAP, Telnet, SMTP, SNMP (community strings), NTLMv1/v2 (all supported protocols like HTTP, SMB, LDAP etc..) and Kerberos
|
||||
|
||||
- Integrated Responder (https://github.com/SpiderLabs/Responder) to poison LLMNR, NBT-NS and MDNS, and act as a WPAD rogue server.
|
||||
|
||||
- Integrated SSLstrip+ (https://github.com/LeonardoNve/sslstrip2) by Leonardo Nve to partially bypass HSTS as demonstrated at BlackHat Asia 2014
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue